Ref 

# 


Hits 


Seatrh Query 


DBS 


Default 
Operator 


Plurals 


Time Stamp 


LI 


16409 


fil$3 near2 shar$5 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWEI^; 
IB|V|_TDB 


OR 


ON 


2005/03/28 09:29 


L2 


339 


1 and (ACL or (access adj control 
adj list)) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBI^1_TDB 


OR 


ON 


2005/03/28 09:37 


13 


1 


2 and sharer and sharee 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBM_TDB 


OR 


ON 


2005/03/28 09:32 


L4 


5 


2 and sharer 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBMJTDB 


OR 


ON 


2005/03/28 09:35 


L5 




Z and yirtual adj folder 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
JBM.TDB : 


OR 


.;'oN-:F - 


2005/03/28 09:43' 


L6 


758 


(ACL or (access adj control adj list)) 
and (access adj right) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBI^_TDB 


OR 


ON 


2005/03/28 09:50 


L7 


343 


6 and (folder or directory) near6 
access$6 


US-PGPUB; 
USPAT; 
EPO; JPO; 


OR 




2005/03/28 09:51 








"DERWENT; 
IB|v|_TDB 








L8 


11 


7 and virtual adj folder 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBMJTDB 


OR 


ON 


2005/03/28 09:48 


L9 


11 


8 and shar$4 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBM_TDB 


OR 


ON ; 


2005/03/28 09:46 


LIO 


11 


6 and virtual adj folder 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBMJTDB 


OR 


ON 


2005/03/28 09:49 
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Lll 


123 


virtual adj folder 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBM_TDB 


OR 


ON 


2005/03/28 09:49 


L12 


4 


11 and (707/9.CCIS. or 713/200,201, 
les.ccls.) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBMjTDB 


OR 


ON 


2005/03/28 09:49 


L13 


11 


11 and ((ACL or (access adj control 
adj list)) and (access adj right)) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBMJTDB 


OR 


ON 


2005/03/28 09:50 


L14 


22 


11 and ((ACL or (access adj control 
adj list)) or (access adj right)) 


US-PGPUB; 
USPAT; 
EPO; JPO; : 
DERWENT; 
IBM_TDB 


OR 


ON 


2005/03/28 09:51 


LIS 


20 


14 and (folder or directory or file) 
near6 access$6 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBMJTDB 


OR 


ON 


2005/03/28 09:51 


L16 


■ 19 


14;and (fblder or directory or file) 
near2 aa;ess$6i . ■ ■ 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBMJTDB 


OR 


ON^ 


2005/03/28 09:53 


L17 


16 


16 and shar$4 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWEIvrr; 
IBM_TDB 


OR 


ON 


2005/03/28 09:53 


L18 


, ii 


16 and shaf$4 neap (file 6r~" . 
directory or fbldier).. ' ; 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT; 
IBMJTDB 


"OR 




2005/03/28 09:54™ 
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21 Virtual enterprise access control requirements 
M. Coetzee, 3. H. P. Eloff 

September 2003 Proceedings of the 2003 annual research conference of the South 

African institute of computer scientists and information technologists 
on Enablement through technology 

Full text available: ^pdfd 26.63 KB) Additional Information: full citation , abstract , references , index terms 

Current developments in IT point towards the formation of loosely coupled enterprises, 
often referred to as virtual enterprises. These enterprises require both secure and flexible 
collaboration between unrelated information systems. Web services technology can be used 
as an Ideal platform for realising virtual enterprises throughh their ease of integration, 
flexibility, and support of XML vocabularies. To ensure the successful implementation of 
Web services within virtual enterprises, new approa ... 

Keywords: B2B, SOAP, XML, access control, design, federation, management, roles, 
security, standardization, trust, virtual enterprises, web services 

22 File and storage systems: Decentralized user authentication in a global file system 
Michael Kaminsky, George Savvides, David Mazieres, M. Frans Kaashoek 

October 2003 Proceedings of the nineteenth ACM symposium on Operating systems 
principles 

Full text available: ^ pdf(144.43 KB^ Additional Information: full citation , abstract , references , index terms 

The challenge for user authentication in a global file system is allowing people to grant 
access to specific users and groups in remote administrative domains, without assuming 
any kind of pre-existing administrative relationship. The traditional approach to user 
authentication across administrative domains is for users to prove their identities through a 
chain of certificates. Certificates allow for general forms of delegation, but they often 
require more infrastructure than is necessary to sup ... 



Keywords: ACL, SFS, authentication, authorization, credentials, file system, groups, users 



Next generation access control models: A logical specification for usage control 

Xinwen Zhang, Jaehong Park, Francesco Parisi-Presicce, Ravi Sandhu 

June 2004 Proceedings of the ninth ACM symposium on Access control models and 



h 



cge cf e fg hg 



cce c 



Results (page 2): "filing sharing" ("access control list" or acl) "virtual folder" 



Page 2 of 6 



technologies 

Full text available: ^pdf(145.03 KB) Additional Information: full citation, abstract , references, index temis 

Recently presented usage control (UCON) has been considered as the next generation 
access control model with distinguishing properties of decision continuity and attribute 
mutability. Ausage control decision is determined by combining authorizations, obligations, 
and conditions, presented as UCONABC core models by Park and Sandhu. Based on these 
core aspects, we develop afirst-order logic specification of UCON with Lamport's 
temporallogic of actions (TLA). The building blocl<s o ... 

Keywords: access control, logic specification, security policy, usage control 



A flexible access control mechanism for CAD frameworks 

A. J. van der Hoeven, Olav ten Bosch, Rene van Leuken, Pieter van der Wolf 

September 1994 Proceedings of the conference on European design automation 

Full text available: ^ pdf(704.03 KB) Additional Information: full citation, references , citings , index terms 



25 A role-based access control model and reference implementation within a corporate Q 
intranet 

David F. Ferraiolo, John F. Barkiey, D. Richard Kuhn 

February 1999 ACM Transactions on Information and System Security (TISSEC), volume 2 
Issue 1 

Full text available- j Sl Ddf(252 60 KB) Additional Information: full citation , abstract , references , citings , index 
• lisl^ = terms 

This paper describes NIST's enhanced RBAC model and our approach to designing and 
implementing RBAC features for networked Web servers. The RBAC model formalized in this 
paper is based on the properties that were first described in Ferraiolo and Kuhn [1992] and 
Ferraiolo et al. [1995], with adjustments resulting from experience gained by prototype 
implementations, market analysis, and observations made by Jansen [1988] and Hoffman 
[1996]. The implementation of RBAC for the Web (RBAC/Web) p ... 

Keywords: RBAC, Web arrows. World Wide Web, access control, authorization 
management, role based access 

2^ Flexible enterprise access control with object-oriented view specification lij 
Mark Evered 

January 2003 Proceedings of the Australasian information security worlcshop 
conference on ACSW frontiers 2003 - Volume 21 

Full text available* I S pdff 99 87 KB) Additional Information: full citation, abstract , references, citings , index 

The per-method access control lists of standard middleware technologies allow only sinnple 
forms of access control to be expressed and enforced. Given the increasing use of web- 
based applications involving sensitive data, the increased threat and the stringent 
requirements of privacy laws, a more flexible and secure approach is needed. In this paper 
we present a three-step approach to access control involving object-oriented encapsulation, 
middleware based on a new, more secure access control mec ... 

Keywords: access control, object-oriented systems, web-based systems 
Miaratino to role-based access control H 
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Kami Brooks 

October 1999 Proceedings of the fourth ACM workshop on Role-based access control 

Full text available: ^ pdfn.22 MB) Additional Information: full citation , refere 



Keywords: Tivoli Managennent Environment, enterprise systems management, migration, 
role-based access control, security management 



28 Managing trust between collaborating companies using outsourced role based access Q 
control 

Thomas Hildmann, Jorg Barholdt 

October 1999 Proceedings of the fourth ACM workshop on Role-based access control 

Full text available: ^ pdf(885.42 KB) Additional Infomiation: full citation, references, citings, index temris 



29 Access control mechanisms for inter-organizational workflow 
Myong H. Kang, Joon S. Park, Judith N. Froscher 

May 2001 Proceedings of the sixth ACM symposium on Access control models and 
technologies 

Full text available- i ^pdf(253 16 KB) Additional Information: full citation, abstract , references, citings , index 

As more businesses engage in globalization, inter-organizational collaborative computing 
grows in importance. Since we cannot expect homogeneous computing environments in 
participating organizations, heterogeneity and Internet-based technology are prevalent in 
inter-organizational collaborative computing environments. One technology that provides 
solutions for data sharing and work coordination at the global level is inter-organizational 
workflow. In this paper, we investigate the access co ... 

Keywords: access control, enterprise, organizational security, security, workflow 



30 Access Control Models and Mechanisms: Cryptographic access control in a distributed Q 

file system 

Anthony Harrington, Christian Jensen 

June 2003 Proceedings of the eighth ACM symposium on Access control models and 
technologies 

Full text available: ^ pdf(249.24 KB) Additional Infomiation: full citation, abstract , references, index terms 

Traditional access control mechanisms rely on a reference monitor to mediate access to 
protected resources. Reference monitors are inherently centralized and existing attempts to 
distribute the functionality of the reference monitor suffer from problems of 
scalability. Cryptographic access control is a new distributed access control paradigm 
designed for a global federation of information systems. It defines an implicit access control 
mechanism, which relies exclusively on cryptography to provide ... 

Keywords: access control, cryptography, network file systems 



CACL: efficient fine-grained protection for objects 
Joel Richardson, Peter Schwarz, Luis-Felipe Cabrera 

October 1992 ACM SIGPLAN Notices , conference proceedings on Object-oriented 
programming systems, languages, and applications, volume 27 issue lo 



g e cf e f g h g cce 



Results (page 2): "filing sharing" ("access control list" or acl) "virtual folder" 



Page 4 of 6 



Full text available: ^ pdf(1.61 MB) Additional Information: full citation, references, citings, index terms 



32 Structure of mathematical programming systems 
WM. Orchard Hays 

January 1968 Proceedings of the 1968 23rd ACM national conference 

Full text available: ^ pdf(1.47 MB) Additional Information: full citation, abstract, index terms 

A mathematical programming system (MPS), as now implemented on third generation 
computers, constitutes four separate subject areas: 1. Algorithmic and procedural 
capabilities 2. Problem formulation and solution techniques 3. Programming languages 4. 
System structure and use Each of these areas involves extensive considerations and we can 
not do justice to any of them in the time available. Since problem formulation and solution 
techniqu ... 

33 ACL: a lanauaae specific for auditors 

H. J. Will 

May 1983 Communications of the ACM, Volume 26 issue 5 

Full text available: ^ pdff702.05 KB) Additional Information: full citation, abstract, references, index terms 

Audit software is essential for accountants. The software should be written to consolidate 
the audit support functions into a common language for management information systems 
(MIS). ACL (Audit Command Language) is a prototype language for designing a feasible 
Interactive conversational language for auditing purposes. 

Keywords: audit and control, audit command language, audit interfaces, audit language, 
audit software, audit techniques, audit tools, computer-based auditing, human-machine 
auditing, interactive auditing 



34 Team-and-role-based organizational context and access control for cooperative 
hypermedia environments 
Weigang Wang 

February 1999 Proceedings of the tenth ACM Conference on Hypertext and 

hypermedia : returning to our diverse roots: returning to our diverse 
roots 

Full text available: ^pdf(2.13MB) Additional Information: full citation, references , citings, index terms 

Keywords: cooperative hypermedia, coordination, groupware, process support, role-based 
access control, workflow 



35 Managing role/permission relationships using object access typ es 
John Barkley, Anthony Cincotta 

October 1998 Proceedings of the third ACM workshop on Role-based access control 

Full text available: ^ pdf(4.62 MB) Additional Information: full citation , references , citings , index terms 



36 Specifying and managing role-based access control within a corporate intranet 
David Ferraiolo, John Barkley 

November 1997 Proceedings of the second ACM workshop on Role-based access control 

Full text available: Additional Information: 
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37 Web and e-business application: An agreement centric access control mechanism for Q 
business to business e-commerce 

Victoria Ungureanu 

March 2002 Proceedings of the 2002 ACM symposium on Applied computing 

Full text available: ^pdf(556.10 KB) Additional Information: full citation , abstract , references, index terms 

We argue that nnatrix-based models are inadequate for regulating business to business (or 
B2B, for short) e-commerce due to the diversity, connplexity and potential large nunnber of 
connnnercia! agreements that have to be supported. To deal with these issues, we propose 
In this paper an agreement-centric access control model. The paper introduces the concept 
of communication agreement {CAR) as a means for specifying contractual terms, and 
presents the CAR enforcement mechanism. We expio ... 

38 Access control: Comparing the expressive power of access control models Q 
Mahesh V. Tripunitara, Ninghui LI 

October 2004 Proceedings of the 11th ACM conference on Computer and 
communications security 

Full text available: ^pdfd 52.33 KB) Additional Information: full citation , abstract , references , index terms 

Comparing the expressive power of access control models Is recognized as a fundamental 
problem in computer security. Such comparisons are generally based on simulations 
between different access control schemes. However, the definitions for simulations that are 
used In the literature make it Impossible to put results and claims about the expressive 
power of access control models into a single context and to compare such models to one 
another in a meaningful way. 



We propose a theory for ... 



Keywords: augmented typed access matrix, discretionary access control, expressive 
power, reduction, role-based access control, state-matching reduction, typed access matrix 

39 Access Control Management and: Models: Towards usage control models: beyond Q 
traditional access control 
Jaehong Park, Ravi Sandhu 

June 2002 Proceedings of the seventh ACM symposium on Access control models and 
technologies 

Full text available: ■ BDdf(246.23 KB) Additional Information: full citation , abstract, references, dtings. index 

terms 

In this paper we develop the concept of Usage Control (UCON) that encompasses traditional 
access control, trust management, and digital rights management and goes beyond them in 
its definition and scope. While usage control concepts have been mentioned off and on in 
the security literature for some time, there has been no systematic treatment so far. By 
unifying these three areas UCON offers a promising approach for the next generation of 
access control. Traditional access control has focused on ... 

^0 High assurance discretionary access control for object bases Q 
Elisa Bertlno, Pierangela Samarati, Sushil Jajodia 

December 1993 Proceedings of the 1st ACM conference on Computer and 
communications security 

Full text available: ^ pdfn.17 MB) Additional Information: full citation , abstract , references , citings, index 
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terms 

Discretionary access control, based on checking access requests against users' 
autliorlzations, does not provide any way of restricting tlie usage of information once it has 
been ''legally" accessed. This makes discretionary systems vulnerable to Trojan Horses 
maliciously leaking information. Therefore the need arises for providing additional controls 
limiting the indiscriminate flow of information in the system. This paper proposes a 
message filter complementing discretionary auth ... 
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